Sign Up to our social questions and Answers Engine to ask questions, answer people’s questions, and connect with other people.
Login to our social questions & Answers Engine to ask questions answer people’s questions & connect with other people.
Lost your password? Please enter your email address. You will receive a link and will create a new password via email.
Please briefly explain why you feel this question should be reported.
Please briefly explain why you feel this answer should be reported.
Please briefly explain why you feel this user should be reported.
My company doesn’t want sensitive data to be stored as files unless they’re sanitized first. Anything in memory is fair game. So files downloaded from an FTP server must be sanitized in memory before storing it on disk.
I’m using Jsch as my SFTP library and wondered whether or not using InputStream objects actually implies storing a temp file somewhere on disk by the JRE?
Using
InputStreamdoes not imply a file on disk. That doesn’t mean Tomcat or some other intermediary doesn’t store it temporarily (or the operating system itself).The
InputStreamcould be backed by a AudioInputStream, ByteArrayInputStream, FileInputStream, FilterInputStream, InputStream, ObjectInputStream, PipedInputStream, SequenceInputStream, StringBufferInputStream, or any other kind ofInputStream.